M
Michael Jacobs
Guest
The OAuth2 Spring support will generate a Client-Principal and deliver it to the ABL application via the session:current-request-info attribute - like it does for all of the other Spring supported authentication. Spring will pick up the JWT's user-id and expiration and use those in the Client-Principal. You will have options to add static Role names from the configuration, map the OAuth2 token's granted 'scope' as Roles, or there is a specific JWT field name that it will look for and use for Role names. Using the JWT's session-id ( or its equivalent ) and map it to the Client-Principal session-id I'll be taking a look at. Mike J.
Continue reading...
Continue reading...